Topic: Prevent your server to get hacked by creating symlink under non root user (Read 349 times)

dspasov · « **on:** December 08, 2011, 08:09:36 AM »

We have seen that some dedicated customers of ours experienced a security issues and got their servers hacked through symlink under non root user?. Here is the solution:

Symlink Protect cPanel EasyApache module:

1. First download this files /http://spasov.us/patch/Apache.zip

Login as root and go to /var/cpanel/easy/apache/custom_opt_mods/Cpanel/Easy/Apache

upload SymlinkProtection.pm and SymlinkProtection.pm.tar.gz on this directory: /var/cpanel/easy/apache/custom_opt_mods/Cpanel/Easy/Apache

2. Run /scripts/easyapache and select SymlinkProtection from the "Exhaustive Options" list .

If you have any other questions about your server security, please ask them here or go to www.facebook.com/hostcolor say "Like" and post on our wall!

Author Topic: Prevent your server to get hacked by creating symlink under non root user (Read 349 times)

dspasov

Prevent your server to get hacked by creating symlink under non root user